cbcvebase.
CVE-2011-4682
published 2011-12-07

CVE-2011-4682: The JavaScript engine in Opera before 11.60 does not properly implement the in operator, which allows remote attackers to bypass the Same Origin Policy via…

PriorityP431medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EPSS
2.09%
79.3th percentile
The JavaScript engine in Opera before 11.60 does not properly implement the in operator, which allows remote attackers to bypass the Same Origin Policy via vectors related to variables on different web sites.

Affected

79 ranges· showing 25
VendorProductVersion rangeFixed in
operaopera_browser<= 11.60
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.